Skip to content

Latest commit

 

History

History
43 lines (35 loc) · 1.05 KB

PLUGINS.md

File metadata and controls

43 lines (35 loc) · 1.05 KB
Raw

regipy Plugins

  • The plugin system is a robust and extensive feature that auto-detects the hive type and execute the relevant plugins

Plugins

System Hive

  • persistence
  • Installed services
  • List routes
  • Get computer name
  • Shimcache
  • Timezone data

NTUSER Hive

  • Persistence
  • runmru
  • Recent documents
  • Typed URLs
  • User Assist
  • Word Wheel Query

Amcache Hive

  • Parse amcache

SOFTWARE Hive

  • Persistence
  • Installed programs
  • Sysinternals EULA
  • User SIDs
  • Windows version info
  • Profile List

SAM Hive

  • Users and groups

Contributing new plugins

Adding a new plugin is very straight forward:

  1. Copy the regipy/plugins/plugin_template.py file to the relevant folder (according to hive type)
  2. Update the code:
    • Update the NAME parameter and the Class name accordingly (NAME in snake case, Class name in camel case)
    • Feel free to use/add any utility function to regipy/utils.py
    • Import your class in regipy/plugins/__init__.py